In memcached before 1.5.14, a NULL pointer dereference was found in the "lru mode" and "lru tempttl" commands. This causes a denial of service when parsing crafted lru command messages in processlru_command in memcached.c.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1.5.6-0ubuntu1.1", "binary_name": "memcached" }, { "binary_version": "1.5.6-0ubuntu1.1", "binary_name": "memcached-dbgsym" } ] }